Endava's Moldovan Delivery Centre Becomes the First Company in the Region to Achieve both ISO9001 and ISO27001 (BS7799)

The First Dual Accreditation by British Standards Institution (BSi) in the Region

Following the audit from BSI MS CIS (subsidiary of BSI Group - British Standards Institution) (BSi), Endava’s Quality Management System (QMS) has been certified in compliance with the requirements of BS EN ISO 9001:2000 with the accreditation marks UKAS (UK), RvA (Europe), for the following scope: "Design, implementation, testing and delivery of software solutions".

In addition, Endava has just learnt that its Information Security Management System (ISMS) has been certified in compliance with the requirements of ISO/IEC 27001:2005 with the accreditation mark UKAS (UK) for the following scope: "The ISMS in relation to sales, development, design, implementation, testing and delivery of software and IT solutions, consultancy and IT infrastructure processes".

ISO 27001 is the formal standard against which organisations seek independent certification of their Information Security Management Systems (their frameworks to design, implement, manage, maintain and enforce information security processes and controls systematically and consistently throughout the organisation).

Endava is the first company to receive a BSi certificate in Romanian and is now working towards implementing the IT Service Management best practices according to ISO 20000 standard. Endava now provides managed services to customers worldwide from its offices in Oxford, UK and Chisinau, Moldova, as part of an integrated set of services supported by an Integrated Management System.

The ISMS implementation included the following key activities:

• Establishing of a risk management framework;
• Identifying and evaluating the risks for the company;
• Adopting a risk treatment plan;
• Collecting and monitoring the effectiveness of the existing measures, of ISMS;
• Adopting the necessary documentation to support the management system.

One of the objectives in implementing the ISMS was to make sure that the new management system (ISMS) is integrated with the existing QMS and that it works as one system rather than two separate ones. Thus, the ISMS was implemented based on the existing framework and it was possible to re-use the company's best practices while applying the new ones related to information security. BSi assessment methodology helped to certify that both systems operate in an integrated manner.

Natalia Gorobets, BSI MS CIS General Director, commented: “The Endava team has worked extremely hard over the past year to gain this registration. The team should feel extremely proud that their commitment has helped set an example to other organisations.”

“We are very proud to be the first company in Moldova and one of very few in the CEE region to be issued the ISO 27001:2005 certificate, confirming the high level of skill and competence of our staff in the key area of information security management”, added Nigel Bridges, CEO, Endava. “With our security credentials being endorsed by BSi we are now able to offer our clients dual confidence in the quality of both our IT development processes and our security management systems in the UK, Moldova and Romania; which further strengthens our consultancy, development and support offerings, and demonstrates good practice in information security management to our customers.”

As part of the continual improvement, Endava regularly assesses the maturity of the processes adopted to offer high levels of service to its customers.

About Endava

Endava architect, implement, and manage highly transactional, secure, business critical systems for some of the worlds leading financial services, media, and telecoms organisations with clients across the UK, Europe and the USA.

Endava was established in 2006, following the merger between Brains Direct, a leading supplier of Eastern European offshore software development and IT services, and Concise Group, a City-based IT consulting and services organisation, providing solutions using the
very best of East and West European talent. Endava’s aim is to be the leading provider of IT services from Central and Eastern Europe; supporting sustainable transformation to the locations where they work.

This capability from the combined group now enables Endava to support their customers throughout the lifecycle from Strategy and Design through to implementation and the ongoing management of the customer solutions. This is underpinned by a blended sourcing model, providing highly skilled and cost effective delivery of development & support capability from our operations across Europe ; Chisinau, Moldova; Bucharest and Cluj, Romania; London, Woking and Oxford, England;

About BSI British Standards

BSI British Standards is the UK’s national standards body, working with government, businesses and consumers to represent UK interests and facilitate the production of British, European and international standards to meet economic and social needs.